npm - @daloyjs/core - Versions diffs - 0.7.4 → 0.8.2 - Mend

@daloyjs/core 0.7.4 → 0.8.2

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (67) hide show

package/README.md +33 -63
package/dist/adapters/bun.d.ts +26 -4
package/dist/adapters/bun.d.ts.map +1 -1
package/dist/adapters/bun.js +16 -4
package/dist/adapters/bun.js.map +1 -1
package/dist/adapters/cloudflare.d.ts +21 -4
package/dist/adapters/cloudflare.d.ts.map +1 -1
package/dist/adapters/cloudflare.js.map +1 -1
package/dist/adapters/deno.d.ts +25 -2
package/dist/adapters/deno.d.ts.map +1 -1
package/dist/adapters/deno.js +39 -7
package/dist/adapters/deno.js.map +1 -1
package/dist/adapters/fastly.d.ts +23 -0
package/dist/adapters/fastly.d.ts.map +1 -0
package/dist/adapters/fastly.js +11 -0
package/dist/adapters/fastly.js.map +1 -0
package/dist/adapters/lambda.d.ts +67 -0
package/dist/adapters/lambda.d.ts.map +1 -0
package/dist/adapters/lambda.js +117 -0
package/dist/adapters/lambda.js.map +1 -0
package/dist/adapters/node.d.ts +7 -0
package/dist/adapters/node.d.ts.map +1 -1
package/dist/adapters/node.js +17 -4
package/dist/adapters/node.js.map +1 -1
package/dist/adapters/vercel.d.ts +35 -7
package/dist/adapters/vercel.d.ts.map +1 -1
package/dist/adapters/vercel.js +22 -1
package/dist/adapters/vercel.js.map +1 -1
package/dist/app.d.ts +235 -8
package/dist/app.d.ts.map +1 -1
package/dist/app.js +222 -8
package/dist/app.js.map +1 -1
package/dist/client.d.ts +27 -0
package/dist/client.d.ts.map +1 -1
package/dist/client.js +27 -0
package/dist/client.js.map +1 -1
package/dist/errors.d.ts +169 -3
package/dist/errors.d.ts.map +1 -1
package/dist/errors.js +143 -0
package/dist/errors.js.map +1 -1
package/dist/logger.d.ts +26 -0
package/dist/logger.d.ts.map +1 -1
package/dist/logger.js +26 -0
package/dist/logger.js.map +1 -1
package/dist/middleware.d.ts +143 -0
package/dist/middleware.d.ts.map +1 -1
package/dist/middleware.js +147 -4
package/dist/middleware.js.map +1 -1
package/dist/openapi.d.ts +32 -0
package/dist/openapi.d.ts.map +1 -1
package/dist/openapi.js +33 -2
package/dist/openapi.js.map +1 -1
package/dist/schema.d.ts +33 -2
package/dist/schema.d.ts.map +1 -1
package/dist/schema.js +33 -2
package/dist/schema.js.map +1 -1
package/dist/security-schemes.d.ts +75 -5
package/dist/security-schemes.d.ts.map +1 -1
package/dist/security-schemes.js +75 -5
package/dist/security-schemes.js.map +1 -1
package/dist/security.d.ts +73 -4
package/dist/security.d.ts.map +1 -1
package/dist/security.js +73 -4
package/dist/security.js.map +1 -1
package/dist/types.d.ts +195 -5
package/dist/types.d.ts.map +1 -1
package/package.json +9 -1

package/dist/schema.js CHANGED Viewed

@@ -1,9 +1,40 @@
-/** Validate any Standard-Schema-compatible schema. */
+/**
+ * Run a Standard-Schema validator over an arbitrary input. Awaits async
+ * validators automatically and returns the spec-defined
+ * `{ value }` / `{ issues }` result.
+ *
+ * DaloyJS calls this internally for every declared request schema; you can
+ * also use it directly inside hooks or business logic.
+ *
+ * @example
+ * ```ts
+ * import { z } from "zod";
+ * import { validate } from "@daloyjs/core";
+ *
+ * const schema = z.object({ name: z.string() });
+ * const result = await validate(schema, { name: "Ada" });
+ * if (result.issues) throw new Error(result.issues[0].message);
+ * console.log(result.value.name);
+ * ```
+ *
+ * @param schema - Any Standard-Schema-compatible validator.
+ * @param value - The value to validate.
+ * @returns Fulfills with the validation result.
+ * @since 0.1.0
+ */
 export async function validate(schema, value) {
     const r = schema["~standard"].validate(value);
     return r instanceof Promise ? r : r;
 }
-/** Light-weight check for "looks like a Standard Schema". */
+/**
+ * Duck-typed runtime check that an unknown value looks like a Standard
+ * Schema validator (has a `~standard.validate` function). Useful in helpers
+ * that accept either a schema or a raw value.
+ *
+ * @param x - Value to test.
+ * @returns `true` when `x` exposes the Standard Schema contract.
+ * @since 0.1.0
+ */
 export function isStandardSchema(x) {
     return (!!x &&
         typeof x === "object" &&

package/dist/schema.js.map CHANGED Viewed

	@@ -1 +1 @@
1	- {"version":3,"file":"schema.js","sourceRoot":"","sources":["../src/schema.ts"],"names":[],"mappings":"AAqDA~~,sDAAsD~~;~~AACtD~~,MAAM,CAAC,KAAK,UAAU,QAAQ,CAC5B,MAAS,EACT,KAAc;IAEd,MAAM,CAAC,GAAG,MAAM,CAAC,WAAW,CAAC,CAAC,QAAQ,CAAC,KAAK,CAAC,CAAC;IAC9C,OAAO,CAAC,YAAY,OAAO,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,CAAE,CAAS,CAAC;AAC/C,CAAC;AAED~~,6DAA6D~~;~~AAC7D~~,MAAM,UAAU,gBAAgB,CAAC,CAAU;IACzC,OAAO,CACL,CAAC,CAAC,CAAC;QACH,OAAO,CAAC,KAAK,QAAQ;QACrB,WAAW,IAAK,CAAY;QAC5B,OAAQ,CAAS,CAAC,WAAW,CAAC,EAAE,QAAQ,KAAK,UAAU,CACxD,CAAC;AACJ,CAAC"}
1	+ {"version":3,"file":"schema.js","sourceRoot":"","sources":["../src/schema.ts"],"names":[],"mappings":"AAqDA;;;;;;;;;;;;;;;;;;;;;;;GAuBG;AACH,MAAM,CAAC,KAAK,UAAU,QAAQ,CAC5B,MAAS,EACT,KAAc;IAEd,MAAM,CAAC,GAAG,MAAM,CAAC,WAAW,CAAC,CAAC,QAAQ,CAAC,KAAK,CAAC,CAAC;IAC9C,OAAO,CAAC,YAAY,OAAO,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,CAAE,CAAS,CAAC;AAC/C,CAAC;AAED;;;;;;;;GAQG;AACH,MAAM,UAAU,gBAAgB,CAAC,CAAU;IACzC,OAAO,CACL,CAAC,CAAC,CAAC;QACH,OAAO,CAAC,KAAK,QAAQ;QACrB,WAAW,IAAK,CAAY;QAC5B,OAAQ,CAAS,CAAC,WAAW,CAAC,EAAE,QAAQ,KAAK,UAAU,CACxD,CAAC;AACJ,CAAC"}

package/dist/security-schemes.d.ts CHANGED Viewed

@@ -85,14 +85,84 @@ export interface OpenIdConnectScheme {
     description?: string;
 }
 export type SecurityScheme = HttpBearerScheme | HttpBasicScheme | ApiKeyScheme | OAuth2Scheme | OpenIdConnectScheme;
-/** HTTP Bearer token scheme (e.g. `Authorization: Bearer <token>`). */
+/**
+ * Build an OpenAPI Security Scheme Object for HTTP Bearer authentication
+ * (e.g. `Authorization: Bearer <token>`).
+ *
+ * @example
+ * ```ts
+ * import { App, httpBearerScheme } from "@daloyjs/core";
+ * import { generateOpenAPI } from "@daloyjs/core/openapi";
+ *
+ * const app = new App();
+ * const doc = generateOpenAPI(app, {
+ *   info: { title: "Books API", version: "1.0.0" },
+ *   securitySchemes: { bearerAuth: httpBearerScheme({ bearerFormat: "JWT" }) },
+ * });
+ * ```
+ *
+ * @param options - Optional `bearerFormat` hint and `description`.
+ * @returns A spec-shaped `{ type, scheme, ... }` object.
+ * @since 0.1.0
+ */
 export declare function httpBearerScheme(options?: HttpBearerSchemeOptions): HttpBearerScheme;
-/** HTTP Basic auth scheme (`Authorization: Basic <base64>`). */
+/**
+ * Build an OpenAPI Security Scheme Object for HTTP Basic authentication
+ * (`Authorization: Basic <base64>`).
+ *
+ * @param options - Optional human-readable `description`.
+ * @returns A spec-shaped `{ type: "http", scheme: "basic", ... }` object.
+ * @since 0.1.0
+ */
 export declare function httpBasicScheme(options?: HttpBasicSchemeOptions): HttpBasicScheme;
-/** API key scheme delivered in a header, query parameter, or cookie. */
+/**
+ * Build an OpenAPI Security Scheme Object for an API key delivered in a
+ * request header, query parameter, or cookie.
+ *
+ * @example
+ * ```ts
+ * apiKeyScheme({ in: "header", name: "x-api-key" })
+ * ```
+ *
+ * @param options - Required `in` location and `name`, plus optional `description`.
+ * @returns A spec-shaped `{ type: "apiKey", in, name, ... }` object.
+ * @throws {TypeError} When `in` is not `"header" | "query" | "cookie"` or `name` is empty.
+ * @since 0.1.0
+ */
 export declare function apiKeyScheme(options: ApiKeySchemeOptions): ApiKeyScheme;
-/** OAuth 2.0 scheme. At least one flow is required. */
+/**
+ * Build an OpenAPI Security Scheme Object for OAuth 2.0. At least one flow
+ * (implicit, password, client credentials, or authorization code) must be
+ * declared.
+ *
+ * @example
+ * ```ts
+ * oauth2Scheme({
+ *   flows: {
+ *     authorizationCode: {
+ *       authorizationUrl: "https://example.com/oauth/authorize",
+ *       tokenUrl: "https://example.com/oauth/token",
+ *       scopes: { "orders:read": "Read your orders" },
+ *     },
+ *   },
+ * })
+ * ```
+ *
+ * @param options - Object with at least one `flows.*` entry.
+ * @returns A spec-shaped `{ type: "oauth2", flows, ... }` object.
+ * @throws {TypeError} When no OAuth2 flow is declared.
+ * @since 0.1.0
+ */
 export declare function oauth2Scheme(options: OAuth2SchemeOptions): OAuth2Scheme;
-/** OpenID Connect Discovery scheme. */
+/**
+ * Build an OpenAPI Security Scheme Object for OpenID Connect Discovery.
+ * The `openIdConnectUrl` must be a non-empty string (typically ending in
+ * `/.well-known/openid-configuration`).
+ *
+ * @param options - Object with the required `openIdConnectUrl`.
+ * @returns A spec-shaped `{ type: "openIdConnect", openIdConnectUrl, ... }` object.
+ * @throws {TypeError} When `openIdConnectUrl` is missing or empty.
+ * @since 0.1.0
+ */
 export declare function openIdConnectScheme(options: OpenIdConnectSchemeOptions): OpenIdConnectScheme;
 //# sourceMappingURL=security-schemes.d.ts.map

package/dist/security-schemes.d.ts.map CHANGED Viewed

	@@ -1 +1 @@
1	- {"version":3,"file":"security-schemes.d.ts","sourceRoot":"","sources":["../src/security-schemes.ts"],"names":[],"mappings":"AAAA;;;;;;;;;GASG;AAEH,MAAM,MAAM,cAAc,GAAG,QAAQ,GAAG,OAAO,GAAG,QAAQ,CAAC;AAE3D,MAAM,WAAW,uBAAuB;IACtC,uDAAuD;IACvD,YAAY,CAAC,EAAE,MAAM,CAAC;IACtB,WAAW,CAAC,EAAE,MAAM,CAAC;CACtB;AAED,MAAM,WAAW,sBAAsB;IACrC,WAAW,CAAC,EAAE,MAAM,CAAC;CACtB;AAED,MAAM,WAAW,mBAAmB;IAClC,EAAE,EAAE,cAAc,CAAC;IACnB,IAAI,EAAE,MAAM,CAAC;IACb,WAAW,CAAC,EAAE,MAAM,CAAC;CACtB;AAED,MAAM,WAAW,kBAAkB;IACjC,gBAAgB,EAAE,MAAM,CAAC;IACzB,UAAU,CAAC,EAAE,MAAM,CAAC;IACpB,MAAM,EAAE,MAAM,CAAC,MAAM,EAAE,MAAM,CAAC,CAAC;CAChC;AAED,MAAM,WAAW,kBAAkB;IACjC,QAAQ,EAAE,MAAM,CAAC;IACjB,UAAU,CAAC,EAAE,MAAM,CAAC;IACpB,MAAM,EAAE,MAAM,CAAC,MAAM,EAAE,MAAM,CAAC,CAAC;CAChC;AAED,MAAM,WAAW,2BAA2B;IAC1C,QAAQ,EAAE,MAAM,CAAC;IACjB,UAAU,CAAC,EAAE,MAAM,CAAC;IACpB,MAAM,EAAE,MAAM,CAAC,MAAM,EAAE,MAAM,CAAC,CAAC;CAChC;AAED,MAAM,WAAW,2BAA2B;IAC1C,gBAAgB,EAAE,MAAM,CAAC;IACzB,QAAQ,EAAE,MAAM,CAAC;IACjB,UAAU,CAAC,EAAE,MAAM,CAAC;IACpB,MAAM,EAAE,MAAM,CAAC,MAAM,EAAE,MAAM,CAAC,CAAC;CAChC;AAED,MAAM,WAAW,WAAW;IAC1B,QAAQ,CAAC,EAAE,kBAAkB,CAAC;IAC9B,QAAQ,CAAC,EAAE,kBAAkB,CAAC;IAC9B,iBAAiB,CAAC,EAAE,2BAA2B,CAAC;IAChD,iBAAiB,CAAC,EAAE,2BAA2B,CAAC;CACjD;AAED,MAAM,WAAW,mBAAmB;IAClC,KAAK,EAAE,WAAW,CAAC;IACnB,WAAW,CAAC,EAAE,MAAM,CAAC;CACtB;AAED,MAAM,WAAW,0BAA0B;IACzC,gBAAgB,EAAE,MAAM,CAAC;IACzB,WAAW,CAAC,EAAE,MAAM,CAAC;CACtB;AAED,MAAM,WAAW,gBAAgB;IAC/B,IAAI,EAAE,MAAM,CAAC;IACb,MAAM,EAAE,QAAQ,CAAC;IACjB,YAAY,CAAC,EAAE,MAAM,CAAC;IACtB,WAAW,CAAC,EAAE,MAAM,CAAC;CACtB;AAED,MAAM,WAAW,eAAe;IAC9B,IAAI,EAAE,MAAM,CAAC;IACb,MAAM,EAAE,OAAO,CAAC;IAChB,WAAW,CAAC,EAAE,MAAM,CAAC;CACtB;AAED,MAAM,WAAW,YAAY;IAC3B,IAAI,EAAE,QAAQ,CAAC;IACf,EAAE,EAAE,cAAc,CAAC;IACnB,IAAI,EAAE,MAAM,CAAC;IACb,WAAW,CAAC,EAAE,MAAM,CAAC;CACtB;AAED,MAAM,WAAW,YAAY;IAC3B,IAAI,EAAE,QAAQ,CAAC;IACf,KAAK,EAAE,WAAW,CAAC;IACnB,WAAW,CAAC,EAAE,MAAM,CAAC;CACtB;AAED,MAAM,WAAW,mBAAmB;IAClC,IAAI,EAAE,eAAe,CAAC;IACtB,gBAAgB,EAAE,MAAM,CAAC;IACzB,WAAW,CAAC,EAAE,MAAM,CAAC;CACtB;AAED,MAAM,MAAM,cAAc,GACtB,gBAAgB,GAChB,eAAe,GACf,YAAY,GACZ,YAAY,GACZ,mBAAmB,CAAC;AAExB~~,uEAAuE~~;~~AACvE~~,wBAAgB,gBAAgB,CAAC,OAAO,GAAE,uBAA4B,GAAG,gBAAgB,CAKxF;AAED~~,gEAAgE~~;~~AAChE~~,wBAAgB,eAAe,CAAC,OAAO,GAAE,sBAA2B,GAAG,eAAe,CAIrF;AAED~~,wEAAwE~~;~~AACxE~~,wBAAgB,YAAY,CAAC,OAAO,EAAE,mBAAmB,GAAG,YAAY,CAgBvE;AAED~~,uDAAuD~~;~~AACvD~~,wBAAgB,YAAY,CAAC,OAAO,EAAE,mBAAmB,GAAG,YAAY,CAavE;AAED~~,uCAAuC~~;~~AACvC~~,wBAAgB,mBAAmB,CACjC,OAAO,EAAE,0BAA0B,GAClC,mBAAmB,CAYrB"}
1	+ {"version":3,"file":"security-schemes.d.ts","sourceRoot":"","sources":["../src/security-schemes.ts"],"names":[],"mappings":"AAAA;;;;;;;;;GASG;AAEH,MAAM,MAAM,cAAc,GAAG,QAAQ,GAAG,OAAO,GAAG,QAAQ,CAAC;AAE3D,MAAM,WAAW,uBAAuB;IACtC,uDAAuD;IACvD,YAAY,CAAC,EAAE,MAAM,CAAC;IACtB,WAAW,CAAC,EAAE,MAAM,CAAC;CACtB;AAED,MAAM,WAAW,sBAAsB;IACrC,WAAW,CAAC,EAAE,MAAM,CAAC;CACtB;AAED,MAAM,WAAW,mBAAmB;IAClC,EAAE,EAAE,cAAc,CAAC;IACnB,IAAI,EAAE,MAAM,CAAC;IACb,WAAW,CAAC,EAAE,MAAM,CAAC;CACtB;AAED,MAAM,WAAW,kBAAkB;IACjC,gBAAgB,EAAE,MAAM,CAAC;IACzB,UAAU,CAAC,EAAE,MAAM,CAAC;IACpB,MAAM,EAAE,MAAM,CAAC,MAAM,EAAE,MAAM,CAAC,CAAC;CAChC;AAED,MAAM,WAAW,kBAAkB;IACjC,QAAQ,EAAE,MAAM,CAAC;IACjB,UAAU,CAAC,EAAE,MAAM,CAAC;IACpB,MAAM,EAAE,MAAM,CAAC,MAAM,EAAE,MAAM,CAAC,CAAC;CAChC;AAED,MAAM,WAAW,2BAA2B;IAC1C,QAAQ,EAAE,MAAM,CAAC;IACjB,UAAU,CAAC,EAAE,MAAM,CAAC;IACpB,MAAM,EAAE,MAAM,CAAC,MAAM,EAAE,MAAM,CAAC,CAAC;CAChC;AAED,MAAM,WAAW,2BAA2B;IAC1C,gBAAgB,EAAE,MAAM,CAAC;IACzB,QAAQ,EAAE,MAAM,CAAC;IACjB,UAAU,CAAC,EAAE,MAAM,CAAC;IACpB,MAAM,EAAE,MAAM,CAAC,MAAM,EAAE,MAAM,CAAC,CAAC;CAChC;AAED,MAAM,WAAW,WAAW;IAC1B,QAAQ,CAAC,EAAE,kBAAkB,CAAC;IAC9B,QAAQ,CAAC,EAAE,kBAAkB,CAAC;IAC9B,iBAAiB,CAAC,EAAE,2BAA2B,CAAC;IAChD,iBAAiB,CAAC,EAAE,2BAA2B,CAAC;CACjD;AAED,MAAM,WAAW,mBAAmB;IAClC,KAAK,EAAE,WAAW,CAAC;IACnB,WAAW,CAAC,EAAE,MAAM,CAAC;CACtB;AAED,MAAM,WAAW,0BAA0B;IACzC,gBAAgB,EAAE,MAAM,CAAC;IACzB,WAAW,CAAC,EAAE,MAAM,CAAC;CACtB;AAED,MAAM,WAAW,gBAAgB;IAC/B,IAAI,EAAE,MAAM,CAAC;IACb,MAAM,EAAE,QAAQ,CAAC;IACjB,YAAY,CAAC,EAAE,MAAM,CAAC;IACtB,WAAW,CAAC,EAAE,MAAM,CAAC;CACtB;AAED,MAAM,WAAW,eAAe;IAC9B,IAAI,EAAE,MAAM,CAAC;IACb,MAAM,EAAE,OAAO,CAAC;IAChB,WAAW,CAAC,EAAE,MAAM,CAAC;CACtB;AAED,MAAM,WAAW,YAAY;IAC3B,IAAI,EAAE,QAAQ,CAAC;IACf,EAAE,EAAE,cAAc,CAAC;IACnB,IAAI,EAAE,MAAM,CAAC;IACb,WAAW,CAAC,EAAE,MAAM,CAAC;CACtB;AAED,MAAM,WAAW,YAAY;IAC3B,IAAI,EAAE,QAAQ,CAAC;IACf,KAAK,EAAE,WAAW,CAAC;IACnB,WAAW,CAAC,EAAE,MAAM,CAAC;CACtB;AAED,MAAM,WAAW,mBAAmB;IAClC,IAAI,EAAE,eAAe,CAAC;IACtB,gBAAgB,EAAE,MAAM,CAAC;IACzB,WAAW,CAAC,EAAE,MAAM,CAAC;CACtB;AAED,MAAM,MAAM,cAAc,GACtB,gBAAgB,GAChB,eAAe,GACf,YAAY,GACZ,YAAY,GACZ,mBAAmB,CAAC;AAExB;;;;;;;;;;;;;;;;;;;GAmBG;AACH,wBAAgB,gBAAgB,CAAC,OAAO,GAAE,uBAA4B,GAAG,gBAAgB,CAKxF;AAED;;;;;;;GAOG;AACH,wBAAgB,eAAe,CAAC,OAAO,GAAE,sBAA2B,GAAG,eAAe,CAIrF;AAED;;;;;;;;;;;;;GAaG;AACH,wBAAgB,YAAY,CAAC,OAAO,EAAE,mBAAmB,GAAG,YAAY,CAgBvE;AAED;;;;;;;;;;;;;;;;;;;;;;GAsBG;AACH,wBAAgB,YAAY,CAAC,OAAO,EAAE,mBAAmB,GAAG,YAAY,CAavE;AAED;;;;;;;;;GASG;AACH,wBAAgB,mBAAmB,CACjC,OAAO,EAAE,0BAA0B,GAClC,mBAAmB,CAYrB"}

package/dist/security-schemes.js CHANGED Viewed

@@ -8,7 +8,26 @@
  * Spec reference:
  *   https://spec.openapis.org/oas/v3.1.0#security-scheme-object
  */
-/** HTTP Bearer token scheme (e.g. `Authorization: Bearer <token>`). */
+/**
+ * Build an OpenAPI Security Scheme Object for HTTP Bearer authentication
+ * (e.g. `Authorization: Bearer <token>`).
+ *
+ * @example
+ * ```ts
+ * import { App, httpBearerScheme } from "@daloyjs/core";
+ * import { generateOpenAPI } from "@daloyjs/core/openapi";
+ *
+ * const app = new App();
+ * const doc = generateOpenAPI(app, {
+ *   info: { title: "Books API", version: "1.0.0" },
+ *   securitySchemes: { bearerAuth: httpBearerScheme({ bearerFormat: "JWT" }) },
+ * });
+ * ```
+ *
+ * @param options - Optional `bearerFormat` hint and `description`.
+ * @returns A spec-shaped `{ type, scheme, ... }` object.
+ * @since 0.1.0
+ */
 export function httpBearerScheme(options = {}) {
     const scheme = { type: "http", scheme: "bearer" };
     if (options.bearerFormat !== undefined)
@@ -17,14 +36,34 @@ export function httpBearerScheme(options = {}) {
         scheme.description = options.description;
     return scheme;
 }
-/** HTTP Basic auth scheme (`Authorization: Basic <base64>`). */
+/**
+ * Build an OpenAPI Security Scheme Object for HTTP Basic authentication
+ * (`Authorization: Basic <base64>`).
+ *
+ * @param options - Optional human-readable `description`.
+ * @returns A spec-shaped `{ type: "http", scheme: "basic", ... }` object.
+ * @since 0.1.0
+ */
 export function httpBasicScheme(options = {}) {
     const scheme = { type: "http", scheme: "basic" };
     if (options.description !== undefined)
         scheme.description = options.description;
     return scheme;
 }
-/** API key scheme delivered in a header, query parameter, or cookie. */
+/**
+ * Build an OpenAPI Security Scheme Object for an API key delivered in a
+ * request header, query parameter, or cookie.
+ *
+ * @example
+ * ```ts
+ * apiKeyScheme({ in: "header", name: "x-api-key" })
+ * ```
+ *
+ * @param options - Required `in` location and `name`, plus optional `description`.
+ * @returns A spec-shaped `{ type: "apiKey", in, name, ... }` object.
+ * @throws {TypeError} When `in` is not `"header" | "query" | "cookie"` or `name` is empty.
+ * @since 0.1.0
+ */
 export function apiKeyScheme(options) {
     if (options.in !== "header" && options.in !== "query" && options.in !== "cookie") {
         throw new TypeError(`apiKeyScheme: "in" must be one of "header" | "query" | "cookie", got "${String(options.in)}"`);
@@ -41,7 +80,29 @@ export function apiKeyScheme(options) {
         scheme.description = options.description;
     return scheme;
 }
-/** OAuth 2.0 scheme. At least one flow is required. */
+/**
+ * Build an OpenAPI Security Scheme Object for OAuth 2.0. At least one flow
+ * (implicit, password, client credentials, or authorization code) must be
+ * declared.
+ *
+ * @example
+ * ```ts
+ * oauth2Scheme({
+ *   flows: {
+ *     authorizationCode: {
+ *       authorizationUrl: "https://example.com/oauth/authorize",
+ *       tokenUrl: "https://example.com/oauth/token",
+ *       scopes: { "orders:read": "Read your orders" },
+ *     },
+ *   },
+ * })
+ * ```
+ *
+ * @param options - Object with at least one `flows.*` entry.
+ * @returns A spec-shaped `{ type: "oauth2", flows, ... }` object.
+ * @throws {TypeError} When no OAuth2 flow is declared.
+ * @since 0.1.0
+ */
 export function oauth2Scheme(options) {
     const flows = options.flows ?? {};
     const hasFlow = flows.implicit !== undefined ||
@@ -56,7 +117,16 @@ export function oauth2Scheme(options) {
         scheme.description = options.description;
     return scheme;
 }
-/** OpenID Connect Discovery scheme. */
+/**
+ * Build an OpenAPI Security Scheme Object for OpenID Connect Discovery.
+ * The `openIdConnectUrl` must be a non-empty string (typically ending in
+ * `/.well-known/openid-configuration`).
+ *
+ * @param options - Object with the required `openIdConnectUrl`.
+ * @returns A spec-shaped `{ type: "openIdConnect", openIdConnectUrl, ... }` object.
+ * @throws {TypeError} When `openIdConnectUrl` is missing or empty.
+ * @since 0.1.0
+ */
 export function openIdConnectScheme(options) {
     if (typeof options.openIdConnectUrl !== "string" || options.openIdConnectUrl.length === 0) {
         throw new TypeError(`openIdConnectScheme: "openIdConnectUrl" must be a non-empty string`);

package/dist/security-schemes.js.map CHANGED Viewed

	@@ -1 +1 @@
1	- {"version":3,"file":"security-schemes.js","sourceRoot":"","sources":["../src/security-schemes.ts"],"names":[],"mappings":"AAAA;;;;;;;;;GASG;AAqGH~~,uEAAuE~~;~~AACvE~~,MAAM,UAAU,gBAAgB,CAAC,UAAmC,EAAE;IACpE,MAAM,MAAM,GAAqB,EAAE,IAAI,EAAE,MAAM,EAAE,MAAM,EAAE,QAAQ,EAAE,CAAC;IACpE,IAAI,OAAO,CAAC,YAAY,KAAK,SAAS;QAAE,MAAM,CAAC,YAAY,GAAG,OAAO,CAAC,YAAY,CAAC;IACnF,IAAI,OAAO,CAAC,WAAW,KAAK,SAAS;QAAE,MAAM,CAAC,WAAW,GAAG,OAAO,CAAC,WAAW,CAAC;IAChF,OAAO,MAAM,CAAC;AAChB,CAAC;AAED~~,gEAAgE~~;~~AAChE~~,MAAM,UAAU,eAAe,CAAC,UAAkC,EAAE;IAClE,MAAM,MAAM,GAAoB,EAAE,IAAI,EAAE,MAAM,EAAE,MAAM,EAAE,OAAO,EAAE,CAAC;IAClE,IAAI,OAAO,CAAC,WAAW,KAAK,SAAS;QAAE,MAAM,CAAC,WAAW,GAAG,OAAO,CAAC,WAAW,CAAC;IAChF,OAAO,MAAM,CAAC;AAChB,CAAC;AAED~~,wEAAwE~~;~~AACxE~~,MAAM,UAAU,YAAY,CAAC,OAA4B;IACvD,IAAI,OAAO,CAAC,EAAE,KAAK,QAAQ,IAAI,OAAO,CAAC,EAAE,KAAK,OAAO,IAAI,OAAO,CAAC,EAAE,KAAK,QAAQ,EAAE,CAAC;QACjF,MAAM,IAAI,SAAS,CACjB,yEAAyE,MAAM,CAAC,OAAO,CAAC,EAAE,CAAC,GAAG,CAC/F,CAAC;IACJ,CAAC;IACD,IAAI,OAAO,OAAO,CAAC,IAAI,KAAK,QAAQ,IAAI,OAAO,CAAC,IAAI,CAAC,MAAM,KAAK,CAAC,EAAE,CAAC;QAClE,MAAM,IAAI,SAAS,CAAC,iDAAiD,CAAC,CAAC;IACzE,CAAC;IACD,MAAM,MAAM,GAAiB;QAC3B,IAAI,EAAE,QAAQ;QACd,EAAE,EAAE,OAAO,CAAC,EAAE;QACd,IAAI,EAAE,OAAO,CAAC,IAAI;KACnB,CAAC;IACF,IAAI,OAAO,CAAC,WAAW,KAAK,SAAS;QAAE,MAAM,CAAC,WAAW,GAAG,OAAO,CAAC,WAAW,CAAC;IAChF,OAAO,MAAM,CAAC;AAChB,CAAC;AAED~~,uDAAuD~~;~~AACvD~~,MAAM,UAAU,YAAY,CAAC,OAA4B;IACvD,MAAM,KAAK,GAAG,OAAO,CAAC,KAAK,IAAI,EAAE,CAAC;IAClC,MAAM,OAAO,GACX,KAAK,CAAC,QAAQ,KAAK,SAAS;QAC5B,KAAK,CAAC,QAAQ,KAAK,SAAS;QAC5B,KAAK,CAAC,iBAAiB,KAAK,SAAS;QACrC,KAAK,CAAC,iBAAiB,KAAK,SAAS,CAAC;IACxC,IAAI,CAAC,OAAO,EAAE,CAAC;QACb,MAAM,IAAI,SAAS,CAAC,oDAAoD,CAAC,CAAC;IAC5E,CAAC;IACD,MAAM,MAAM,GAAiB,EAAE,IAAI,EAAE,QAAQ,EAAE,KAAK,EAAE,CAAC;IACvD,IAAI,OAAO,CAAC,WAAW,KAAK,SAAS;QAAE,MAAM,CAAC,WAAW,GAAG,OAAO,CAAC,WAAW,CAAC;IAChF,OAAO,MAAM,CAAC;AAChB,CAAC;AAED~~,uCAAuC~~;~~AACvC~~,MAAM,UAAU,mBAAmB,CACjC,OAAmC;IAEnC,IAAI,OAAO,OAAO,CAAC,gBAAgB,KAAK,QAAQ,IAAI,OAAO,CAAC,gBAAgB,CAAC,MAAM,KAAK,CAAC,EAAE,CAAC;QAC1F,MAAM,IAAI,SAAS,CACjB,oEAAoE,CACrE,CAAC;IACJ,CAAC;IACD,MAAM,MAAM,GAAwB;QAClC,IAAI,EAAE,eAAe;QACrB,gBAAgB,EAAE,OAAO,CAAC,gBAAgB;KAC3C,CAAC;IACF,IAAI,OAAO,CAAC,WAAW,KAAK,SAAS;QAAE,MAAM,CAAC,WAAW,GAAG,OAAO,CAAC,WAAW,CAAC;IAChF,OAAO,MAAM,CAAC;AAChB,CAAC"}
1	+ {"version":3,"file":"security-schemes.js","sourceRoot":"","sources":["../src/security-schemes.ts"],"names":[],"mappings":"AAAA;;;;;;;;;GASG;AAqGH;;;;;;;;;;;;;;;;;;;GAmBG;AACH,MAAM,UAAU,gBAAgB,CAAC,UAAmC,EAAE;IACpE,MAAM,MAAM,GAAqB,EAAE,IAAI,EAAE,MAAM,EAAE,MAAM,EAAE,QAAQ,EAAE,CAAC;IACpE,IAAI,OAAO,CAAC,YAAY,KAAK,SAAS;QAAE,MAAM,CAAC,YAAY,GAAG,OAAO,CAAC,YAAY,CAAC;IACnF,IAAI,OAAO,CAAC,WAAW,KAAK,SAAS;QAAE,MAAM,CAAC,WAAW,GAAG,OAAO,CAAC,WAAW,CAAC;IAChF,OAAO,MAAM,CAAC;AAChB,CAAC;AAED;;;;;;;GAOG;AACH,MAAM,UAAU,eAAe,CAAC,UAAkC,EAAE;IAClE,MAAM,MAAM,GAAoB,EAAE,IAAI,EAAE,MAAM,EAAE,MAAM,EAAE,OAAO,EAAE,CAAC;IAClE,IAAI,OAAO,CAAC,WAAW,KAAK,SAAS;QAAE,MAAM,CAAC,WAAW,GAAG,OAAO,CAAC,WAAW,CAAC;IAChF,OAAO,MAAM,CAAC;AAChB,CAAC;AAED;;;;;;;;;;;;;GAaG;AACH,MAAM,UAAU,YAAY,CAAC,OAA4B;IACvD,IAAI,OAAO,CAAC,EAAE,KAAK,QAAQ,IAAI,OAAO,CAAC,EAAE,KAAK,OAAO,IAAI,OAAO,CAAC,EAAE,KAAK,QAAQ,EAAE,CAAC;QACjF,MAAM,IAAI,SAAS,CACjB,yEAAyE,MAAM,CAAC,OAAO,CAAC,EAAE,CAAC,GAAG,CAC/F,CAAC;IACJ,CAAC;IACD,IAAI,OAAO,OAAO,CAAC,IAAI,KAAK,QAAQ,IAAI,OAAO,CAAC,IAAI,CAAC,MAAM,KAAK,CAAC,EAAE,CAAC;QAClE,MAAM,IAAI,SAAS,CAAC,iDAAiD,CAAC,CAAC;IACzE,CAAC;IACD,MAAM,MAAM,GAAiB;QAC3B,IAAI,EAAE,QAAQ;QACd,EAAE,EAAE,OAAO,CAAC,EAAE;QACd,IAAI,EAAE,OAAO,CAAC,IAAI;KACnB,CAAC;IACF,IAAI,OAAO,CAAC,WAAW,KAAK,SAAS;QAAE,MAAM,CAAC,WAAW,GAAG,OAAO,CAAC,WAAW,CAAC;IAChF,OAAO,MAAM,CAAC;AAChB,CAAC;AAED;;;;;;;;;;;;;;;;;;;;;;GAsBG;AACH,MAAM,UAAU,YAAY,CAAC,OAA4B;IACvD,MAAM,KAAK,GAAG,OAAO,CAAC,KAAK,IAAI,EAAE,CAAC;IAClC,MAAM,OAAO,GACX,KAAK,CAAC,QAAQ,KAAK,SAAS;QAC5B,KAAK,CAAC,QAAQ,KAAK,SAAS;QAC5B,KAAK,CAAC,iBAAiB,KAAK,SAAS;QACrC,KAAK,CAAC,iBAAiB,KAAK,SAAS,CAAC;IACxC,IAAI,CAAC,OAAO,EAAE,CAAC;QACb,MAAM,IAAI,SAAS,CAAC,oDAAoD,CAAC,CAAC;IAC5E,CAAC;IACD,MAAM,MAAM,GAAiB,EAAE,IAAI,EAAE,QAAQ,EAAE,KAAK,EAAE,CAAC;IACvD,IAAI,OAAO,CAAC,WAAW,KAAK,SAAS;QAAE,MAAM,CAAC,WAAW,GAAG,OAAO,CAAC,WAAW,CAAC;IAChF,OAAO,MAAM,CAAC;AAChB,CAAC;AAED;;;;;;;;;GASG;AACH,MAAM,UAAU,mBAAmB,CACjC,OAAmC;IAEnC,IAAI,OAAO,OAAO,CAAC,gBAAgB,KAAK,QAAQ,IAAI,OAAO,CAAC,gBAAgB,CAAC,MAAM,KAAK,CAAC,EAAE,CAAC;QAC1F,MAAM,IAAI,SAAS,CACjB,oEAAoE,CACrE,CAAC;IACJ,CAAC;IACD,MAAM,MAAM,GAAwB;QAClC,IAAI,EAAE,eAAe;QACrB,gBAAgB,EAAE,OAAO,CAAC,gBAAgB;KAC3C,CAAC;IACF,IAAI,OAAO,CAAC,WAAW,KAAK,SAAS;QAAE,MAAM,CAAC,WAAW,GAAG,OAAO,CAAC,WAAW,CAAC;IAChF,OAAO,MAAM,CAAC;AAChB,CAAC"}

package/dist/security.d.ts CHANGED Viewed

@@ -8,14 +8,83 @@
  * - timingSafeEqual: constant-time string comparison for token checks.
  * - randomId: cryptographically strong request id.
  */
-/** Read a request body to bytes with a hard size cap. */
+/**
+ * Read a `Request` body to a `Uint8Array` while enforcing a hard byte cap.
+ *
+ * The cap is checked first against the declared `Content-Length` (so the
+ * fast-path rejects oversize bodies without reading any bytes), then against
+ * the actual streamed total. Either trigger throws
+ * {@link PayloadTooLargeError} (mapped to `413`). DaloyJS calls this for
+ * every request automatically; use it directly only from custom plugins
+ * that need raw bytes.
+ *
+ * @param req - Standard `Request` to drain.
+ * @param limit - Maximum number of bytes to accept.
+ * @returns Fulfills with the body as a `Uint8Array`.
+ * @throws {PayloadTooLargeError} When the declared or actual size exceeds `limit`.
+ * @throws {BadRequestError} When `Content-Length` is present but invalid.
+ * @since 0.1.0
+ */
 export declare function readBodyLimited(req: Request, limit: number): Promise<Uint8Array>;
-/** JSON.parse that drops dangerous keys (prototype pollution defence). */
+/**
+ * Parse a JSON string while stripping the dangerous keys `__proto__`,
+ * `constructor`, and `prototype` from every nested object. Throws
+ * {@link BadRequestError} on invalid JSON — the message is intentionally
+ * generic to avoid revealing parser internals to attackers.
+ *
+ * @param text - The JSON text to parse. Empty string returns `undefined`.
+ * @returns The parsed value with prototype-pollution keys removed.
+ * @throws {BadRequestError} When the input is not valid JSON.
+ * @since 0.1.0
+ */
 export declare function safeJsonParse(text: string): unknown;
+/**
+ * Validate a candidate HTTP header name against RFC 7230 token grammar and
+ * return its lowercased form (Headers normalize to lowercase). Useful when
+ * accepting header names from user/config input.
+ *
+ * @param name - The header name to validate.
+ * @returns The lowercased header name.
+ * @throws {BadRequestError} When `name` contains illegal characters.
+ * @since 0.1.0
+ */
 export declare function sanitizeHeaderName(name: string): string;
+/**
+ * Reject HTTP header values containing CR, LF, or NUL bytes — the classic
+ * header / response-splitting vector. Returns the value untouched on
+ * success.
+ *
+ * @param value - The header value to validate.
+ * @returns The same `value` if it is safe to write to a header.
+ * @throws {BadRequestError} When `value` contains `\r`, `\n`, or `\0`.
+ * @since 0.1.0
+ */
 export declare function sanitizeHeaderValue(value: string): string;
-/** Constant-time string comparison. Use for tokens, signatures, etc. */
+/**
+ * Constant-time string comparison resistant to timing attacks. Use whenever
+ * comparing secrets such as CSRF tokens, HMAC signatures, or API keys; never
+ * use `===` for those comparisons.
+ *
+ * @param a - First string.
+ * @param b - Second string.
+ * @returns `true` when the strings have the same length and contents.
+ * @since 0.1.0
+ */
 export declare function timingSafeEqual(a: string, b: string): boolean;
-/** Cryptographically strong request id (URL-safe, ~22 chars). */
+/**
+ * Generate a cryptographically strong, URL-safe identifier (~22 chars).
+ *
+ * Uses Web Crypto's `crypto.randomUUID()` when available, falling back to
+ * 16 random bytes via `crypto.getRandomValues()`. The last-resort fallback
+ * (timestamp + `Math.random()`) only triggers in environments without
+ * WebCrypto, which is none of Node 20+/Bun/Deno/Cloudflare Workers/Vercel
+ * Edge.
+ *
+ * Suitable for request ids, session ids, and short-lived correlation tokens.
+ * Do not use for long-lived secrets unless you also sign or wrap them.
+ *
+ * @returns A random URL-safe id string.
+ * @since 0.1.0
+ */
 export declare function randomId(): string;
 //# sourceMappingURL=security.d.ts.map

package/dist/security.d.ts.map CHANGED Viewed

	@@ -1 +1 @@
1	- {"version":3,"file":"security.d.ts","sourceRoot":"","sources":["../src/security.ts"],"names":[],"mappings":"AAAA;;;;;;;;;GASG;AAOH~~,yDAAyD~~;~~AACzD~~,wBAAsB,eAAe,CACnC,GAAG,EAAE,OAAO,EACZ,KAAK,EAAE,MAAM,GACZ,OAAO,CAAC,UAAU,CAAC,CAsCrB;AAID~~,0EAA0E~~;~~AAC1E~~,wBAAgB,aAAa,CAAC,IAAI,EAAE,MAAM,GAAG,OAAO,CAUnD;AAID,wBAAgB,kBAAkB,CAAC,IAAI,EAAE,MAAM,GAAG,MAAM,CAKvD;AAED,wBAAgB,mBAAmB,CAAC,KAAK,EAAE,MAAM,GAAG,MAAM,CAMzD;AAED~~,wEAAwE~~;~~AACxE~~,wBAAgB,eAAe,CAAC,CAAC,EAAE,MAAM,EAAE,CAAC,EAAE,MAAM,GAAG,OAAO,CAO7D;AAED~~,iEAAiE~~;~~AACjE~~,wBAAgB,QAAQ,IAAI,MAAM,CAUjC"}
1	+ {"version":3,"file":"security.d.ts","sourceRoot":"","sources":["../src/security.ts"],"names":[],"mappings":"AAAA;;;;;;;;;GASG;AAOH;;;;;;;;;;;;;;;;GAgBG;AACH,wBAAsB,eAAe,CACnC,GAAG,EAAE,OAAO,EACZ,KAAK,EAAE,MAAM,GACZ,OAAO,CAAC,UAAU,CAAC,CAsCrB;AAID;;;;;;;;;;GAUG;AACH,wBAAgB,aAAa,CAAC,IAAI,EAAE,MAAM,GAAG,OAAO,CAUnD;AAID;;;;;;;;;GASG;AACH,wBAAgB,kBAAkB,CAAC,IAAI,EAAE,MAAM,GAAG,MAAM,CAKvD;AAED;;;;;;;;;GASG;AACH,wBAAgB,mBAAmB,CAAC,KAAK,EAAE,MAAM,GAAG,MAAM,CAMzD;AAED;;;;;;;;;GASG;AACH,wBAAgB,eAAe,CAAC,CAAC,EAAE,MAAM,EAAE,CAAC,EAAE,MAAM,GAAG,OAAO,CAO7D;AAED;;;;;;;;;;;;;;GAcG;AACH,wBAAgB,QAAQ,IAAI,MAAM,CAUjC"}

package/dist/security.js CHANGED Viewed

@@ -9,7 +9,23 @@
  * - randomId: cryptographically strong request id.
  */
 import { PayloadTooLargeError, BadRequestError, } from "./errors.js";
-/** Read a request body to bytes with a hard size cap. */
+/**
+ * Read a `Request` body to a `Uint8Array` while enforcing a hard byte cap.
+ *
+ * The cap is checked first against the declared `Content-Length` (so the
+ * fast-path rejects oversize bodies without reading any bytes), then against
+ * the actual streamed total. Either trigger throws
+ * {@link PayloadTooLargeError} (mapped to `413`). DaloyJS calls this for
+ * every request automatically; use it directly only from custom plugins
+ * that need raw bytes.
+ *
+ * @param req - Standard `Request` to drain.
+ * @param limit - Maximum number of bytes to accept.
+ * @returns Fulfills with the body as a `Uint8Array`.
+ * @throws {PayloadTooLargeError} When the declared or actual size exceeds `limit`.
+ * @throws {BadRequestError} When `Content-Length` is present but invalid.
+ * @since 0.1.0
+ */
 export async function readBodyLimited(req, limit) {
     // Trust Content-Length when present — fail fast.
     const cl = req.headers.get("content-length");
@@ -53,7 +69,17 @@ export async function readBodyLimited(req, limit) {
     return out;
 }
 const FORBIDDEN_KEYS = new Set(["__proto__", "constructor", "prototype"]);
-/** JSON.parse that drops dangerous keys (prototype pollution defence). */
+/**
+ * Parse a JSON string while stripping the dangerous keys `__proto__`,
+ * `constructor`, and `prototype` from every nested object. Throws
+ * {@link BadRequestError} on invalid JSON — the message is intentionally
+ * generic to avoid revealing parser internals to attackers.
+ *
+ * @param text - The JSON text to parse. Empty string returns `undefined`.
+ * @returns The parsed value with prototype-pollution keys removed.
+ * @throws {BadRequestError} When the input is not valid JSON.
+ * @since 0.1.0
+ */
 export function safeJsonParse(text) {
     if (text.length === 0)
         return undefined;
@@ -69,12 +95,32 @@ export function safeJsonParse(text) {
     }
 }
 const HEADER_NAME_RE = /^[!#$%&'*+\-.^_`|~0-9A-Za-z]+$/;
+/**
+ * Validate a candidate HTTP header name against RFC 7230 token grammar and
+ * return its lowercased form (Headers normalize to lowercase). Useful when
+ * accepting header names from user/config input.
+ *
+ * @param name - The header name to validate.
+ * @returns The lowercased header name.
+ * @throws {BadRequestError} When `name` contains illegal characters.
+ * @since 0.1.0
+ */
 export function sanitizeHeaderName(name) {
     if (!HEADER_NAME_RE.test(name)) {
         throw new BadRequestError(`Invalid header name: ${name}`);
     }
     return name.toLowerCase();
 }
+/**
+ * Reject HTTP header values containing CR, LF, or NUL bytes — the classic
+ * header / response-splitting vector. Returns the value untouched on
+ * success.
+ *
+ * @param value - The header value to validate.
+ * @returns The same `value` if it is safe to write to a header.
+ * @throws {BadRequestError} When `value` contains `\r`, `\n`, or `\0`.
+ * @since 0.1.0
+ */
 export function sanitizeHeaderValue(value) {
     // Block CRLF + NUL — the classic header / response splitting vector.
     if (/[\r\n\0]/.test(value)) {
@@ -82,7 +128,16 @@ export function sanitizeHeaderValue(value) {
     }
     return value;
 }
-/** Constant-time string comparison. Use for tokens, signatures, etc. */
+/**
+ * Constant-time string comparison resistant to timing attacks. Use whenever
+ * comparing secrets such as CSRF tokens, HMAC signatures, or API keys; never
+ * use `===` for those comparisons.
+ *
+ * @param a - First string.
+ * @param b - Second string.
+ * @returns `true` when the strings have the same length and contents.
+ * @since 0.1.0
+ */
 export function timingSafeEqual(a, b) {
     const len = Math.max(a.length, b.length);
     let mismatch = a.length ^ b.length;
@@ -91,7 +146,21 @@ export function timingSafeEqual(a, b) {
     }
     return mismatch === 0;
 }
-/** Cryptographically strong request id (URL-safe, ~22 chars). */
+/**
+ * Generate a cryptographically strong, URL-safe identifier (~22 chars).
+ *
+ * Uses Web Crypto's `crypto.randomUUID()` when available, falling back to
+ * 16 random bytes via `crypto.getRandomValues()`. The last-resort fallback
+ * (timestamp + `Math.random()`) only triggers in environments without
+ * WebCrypto, which is none of Node 20+/Bun/Deno/Cloudflare Workers/Vercel
+ * Edge.
+ *
+ * Suitable for request ids, session ids, and short-lived correlation tokens.
+ * Do not use for long-lived secrets unless you also sign or wrap them.
+ *
+ * @returns A random URL-safe id string.
+ * @since 0.1.0
+ */
 export function randomId() {
     const c = globalThis.crypto;
     if (c?.randomUUID)

package/dist/security.js.map CHANGED Viewed

	@@ -1 +1 @@
1	- {"version":3,"file":"security.js","sourceRoot":"","sources":["../src/security.ts"],"names":[],"mappings":"AAAA;;;;;;;;;GASG;AAEH,OAAO,EACL,oBAAoB,EACpB,eAAe,GAChB,MAAM,aAAa,CAAC;AAErB~~,yDAAyD~~;~~AACzD~~,MAAM,CAAC,KAAK,UAAU,eAAe,CACnC,GAAY,EACZ,KAAa;IAEb,iDAAiD;IACjD,MAAM,EAAE,GAAG,GAAG,CAAC,OAAO,CAAC,GAAG,CAAC,gBAAgB,CAAC,CAAC;IAC7C,IAAI,EAAE,EAAE,CAAC;QACP,MAAM,CAAC,GAAG,MAAM,CAAC,EAAE,CAAC,CAAC;QACrB,IAAI,CAAC,MAAM,CAAC,QAAQ,CAAC,CAAC,CAAC,IAAI,CAAC,GAAG,CAAC;YAAE,MAAM,IAAI,eAAe,CAAC,wBAAwB,CAAC,CAAC;QACtF,IAAI,CAAC,GAAG,KAAK;YAAE,MAAM,IAAI,oBAAoB,CAAC,KAAK,CAAC,CAAC;IACvD,CAAC;IAED,IAAI,CAAC,GAAG,CAAC,IAAI;QAAE,OAAO,IAAI,UAAU,CAAC,CAAC,CAAC,CAAC;IAExC,MAAM,MAAM,GAAG,GAAG,CAAC,IAAI,CAAC,SAAS,EAAE,CAAC;IACpC,MAAM,MAAM,GAAiB,EAAE,CAAC;IAChC,IAAI,KAAK,GAAG,CAAC,CAAC;IACd,iDAAiD;IACjD,OAAO,IAAI,EAAE,CAAC;QACZ,MAAM,EAAE,IAAI,EAAE,KAAK,EAAE,GAAG,MAAM,MAAM,CAAC,IAAI,EAAE,CAAC;QAC5C,IAAI,IAAI;YAAE,MAAM;QAChB,IAAI,CAAC,KAAK;YAAE,SAAS;QACrB,KAAK,IAAI,KAAK,CAAC,UAAU,CAAC;QAC1B,IAAI,KAAK,GAAG,KAAK,EAAE,CAAC;YAClB,IAAI,CAAC;gBACH,MAAM,MAAM,CAAC,MAAM,EAAE,CAAC;YACxB,CAAC;YAAC,MAAM,CAAC;gBACP,YAAY;YACd,CAAC;YACD,MAAM,IAAI,oBAAoB,CAAC,KAAK,CAAC,CAAC;QACxC,CAAC;QACD,MAAM,CAAC,IAAI,CAAC,KAAK,CAAC,CAAC;IACrB,CAAC;IAED,MAAM,GAAG,GAAG,IAAI,UAAU,CAAC,KAAK,CAAC,CAAC;IAClC,IAAI,MAAM,GAAG,CAAC,CAAC;IACf,KAAK,MAAM,CAAC,IAAI,MAAM,EAAE,CAAC;QACvB,GAAG,CAAC,GAAG,CAAC,CAAC,EAAE,MAAM,CAAC,CAAC;QACnB,MAAM,IAAI,CAAC,CAAC,UAAU,CAAC;IACzB,CAAC;IACD,OAAO,GAAG,CAAC;AACb,CAAC;AAED,MAAM,cAAc,GAAG,IAAI,GAAG,CAAC,CAAC,WAAW,EAAE,aAAa,EAAE,WAAW,CAAC,CAAC,CAAC;AAE1E~~,0EAA0E~~;~~AAC1E~~,MAAM,UAAU,aAAa,CAAC,IAAY;IACxC,IAAI,IAAI,CAAC,MAAM,KAAK,CAAC;QAAE,OAAO,SAAS,CAAC;IACxC,IAAI,CAAC;QACH,OAAO,IAAI,CAAC,KAAK,CAAC,IAAI,EAAE,CAAC,GAAG,EAAE,KAAK,EAAE,EAAE;YACrC,IAAI,cAAc,CAAC,GAAG,CAAC,GAAG,CAAC;gBAAE,OAAO,SAAS,CAAC;YAC9C,OAAO,KAAK,CAAC;QACf,CAAC,CAAC,CAAC;IACL,CAAC;IAAC,MAAM,CAAC;QACP,MAAM,IAAI,eAAe,CAAC,cAAc,CAAC,CAAC;IAC5C,CAAC;AACH,CAAC;AAED,MAAM,cAAc,GAAG,gCAAgC,CAAC;AAExD,MAAM,UAAU,kBAAkB,CAAC,IAAY;IAC7C,IAAI,CAAC,cAAc,CAAC,IAAI,CAAC,IAAI,CAAC,EAAE,CAAC;QAC/B,MAAM,IAAI,eAAe,CAAC,wBAAwB,IAAI,EAAE,CAAC,CAAC;IAC5D,CAAC;IACD,OAAO,IAAI,CAAC,WAAW,EAAE,CAAC;AAC5B,CAAC;AAED,MAAM,UAAU,mBAAmB,CAAC,KAAa;IAC/C,qEAAqE;IACrE,IAAI,UAAU,CAAC,IAAI,CAAC,KAAK,CAAC,EAAE,CAAC;QAC3B,MAAM,IAAI,eAAe,CAAC,sBAAsB,CAAC,CAAC;IACpD,CAAC;IACD,OAAO,KAAK,CAAC;AACf,CAAC;AAED~~,wEAAwE~~;~~AACxE~~,MAAM,UAAU,eAAe,CAAC,CAAS,EAAE,CAAS;IAClD,MAAM,GAAG,GAAG,IAAI,CAAC,GAAG,CAAC,CAAC,CAAC,MAAM,EAAE,CAAC,CAAC,MAAM,CAAC,CAAC;IACzC,IAAI,QAAQ,GAAG,CAAC,CAAC,MAAM,GAAG,CAAC,CAAC,MAAM,CAAC;IACnC,KAAK,IAAI,CAAC,GAAG,CAAC,EAAE,CAAC,GAAG,GAAG,EAAE,CAAC,EAAE,EAAE,CAAC;QAC7B,QAAQ,IAAI,CAAC,CAAC,CAAC,UAAU,CAAC,CAAC,CAAC,IAAI,CAAC,CAAC,GAAG,CAAC,CAAC,CAAC,UAAU,CAAC,CAAC,CAAC,IAAI,CAAC,CAAC,CAAC;IAC9D,CAAC;IACD,OAAO,QAAQ,KAAK,CAAC,CAAC;AACxB,CAAC;AAED~~,iEAAiE~~;~~AACjE~~,MAAM,UAAU,QAAQ;IACtB,MAAM,CAAC,GAAwB,UAAkB,CAAC,MAAM,CAAC;IACzD,IAAI,CAAC,EAAE,UAAU;QAAE,OAAO,CAAC,CAAC,UAAU,EAAE,CAAC;IACzC,IAAI,CAAC,EAAE,eAAe,EAAE,CAAC;QACvB,MAAM,GAAG,GAAG,IAAI,UAAU,CAAC,EAAE,CAAC,CAAC;QAC/B,CAAC,CAAC,eAAe,CAAC,GAAG,CAAC,CAAC;QACvB,OAAO,KAAK,CAAC,IAAI,CAAC,GAAG,EAAE,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,QAAQ,CAAC,EAAE,CAAC,CAAC,QAAQ,CAAC,CAAC,EAAE,GAAG,CAAC,CAAC,CAAC,IAAI,CAAC,EAAE,CAAC,CAAC;IAC1E,CAAC;IACD,4EAA4E;IAC5E,OAAO,GAAG,IAAI,CAAC,GAAG,EAAE,CAAC,QAAQ,CAAC,EAAE,CAAC,IAAI,IAAI,CAAC,MAAM,EAAE,CAAC,QAAQ,CAAC,EAAE,CAAC,CAAC,KAAK,CAAC,CAAC,CAAC,EAAE,CAAC;AAC7E,CAAC"}
1	+ {"version":3,"file":"security.js","sourceRoot":"","sources":["../src/security.ts"],"names":[],"mappings":"AAAA;;;;;;;;;GASG;AAEH,OAAO,EACL,oBAAoB,EACpB,eAAe,GAChB,MAAM,aAAa,CAAC;AAErB;;;;;;;;;;;;;;;;GAgBG;AACH,MAAM,CAAC,KAAK,UAAU,eAAe,CACnC,GAAY,EACZ,KAAa;IAEb,iDAAiD;IACjD,MAAM,EAAE,GAAG,GAAG,CAAC,OAAO,CAAC,GAAG,CAAC,gBAAgB,CAAC,CAAC;IAC7C,IAAI,EAAE,EAAE,CAAC;QACP,MAAM,CAAC,GAAG,MAAM,CAAC,EAAE,CAAC,CAAC;QACrB,IAAI,CAAC,MAAM,CAAC,QAAQ,CAAC,CAAC,CAAC,IAAI,CAAC,GAAG,CAAC;YAAE,MAAM,IAAI,eAAe,CAAC,wBAAwB,CAAC,CAAC;QACtF,IAAI,CAAC,GAAG,KAAK;YAAE,MAAM,IAAI,oBAAoB,CAAC,KAAK,CAAC,CAAC;IACvD,CAAC;IAED,IAAI,CAAC,GAAG,CAAC,IAAI;QAAE,OAAO,IAAI,UAAU,CAAC,CAAC,CAAC,CAAC;IAExC,MAAM,MAAM,GAAG,GAAG,CAAC,IAAI,CAAC,SAAS,EAAE,CAAC;IACpC,MAAM,MAAM,GAAiB,EAAE,CAAC;IAChC,IAAI,KAAK,GAAG,CAAC,CAAC;IACd,iDAAiD;IACjD,OAAO,IAAI,EAAE,CAAC;QACZ,MAAM,EAAE,IAAI,EAAE,KAAK,EAAE,GAAG,MAAM,MAAM,CAAC,IAAI,EAAE,CAAC;QAC5C,IAAI,IAAI;YAAE,MAAM;QAChB,IAAI,CAAC,KAAK;YAAE,SAAS;QACrB,KAAK,IAAI,KAAK,CAAC,UAAU,CAAC;QAC1B,IAAI,KAAK,GAAG,KAAK,EAAE,CAAC;YAClB,IAAI,CAAC;gBACH,MAAM,MAAM,CAAC,MAAM,EAAE,CAAC;YACxB,CAAC;YAAC,MAAM,CAAC;gBACP,YAAY;YACd,CAAC;YACD,MAAM,IAAI,oBAAoB,CAAC,KAAK,CAAC,CAAC;QACxC,CAAC;QACD,MAAM,CAAC,IAAI,CAAC,KAAK,CAAC,CAAC;IACrB,CAAC;IAED,MAAM,GAAG,GAAG,IAAI,UAAU,CAAC,KAAK,CAAC,CAAC;IAClC,IAAI,MAAM,GAAG,CAAC,CAAC;IACf,KAAK,MAAM,CAAC,IAAI,MAAM,EAAE,CAAC;QACvB,GAAG,CAAC,GAAG,CAAC,CAAC,EAAE,MAAM,CAAC,CAAC;QACnB,MAAM,IAAI,CAAC,CAAC,UAAU,CAAC;IACzB,CAAC;IACD,OAAO,GAAG,CAAC;AACb,CAAC;AAED,MAAM,cAAc,GAAG,IAAI,GAAG,CAAC,CAAC,WAAW,EAAE,aAAa,EAAE,WAAW,CAAC,CAAC,CAAC;AAE1E;;;;;;;;;;GAUG;AACH,MAAM,UAAU,aAAa,CAAC,IAAY;IACxC,IAAI,IAAI,CAAC,MAAM,KAAK,CAAC;QAAE,OAAO,SAAS,CAAC;IACxC,IAAI,CAAC;QACH,OAAO,IAAI,CAAC,KAAK,CAAC,IAAI,EAAE,CAAC,GAAG,EAAE,KAAK,EAAE,EAAE;YACrC,IAAI,cAAc,CAAC,GAAG,CAAC,GAAG,CAAC;gBAAE,OAAO,SAAS,CAAC;YAC9C,OAAO,KAAK,CAAC;QACf,CAAC,CAAC,CAAC;IACL,CAAC;IAAC,MAAM,CAAC;QACP,MAAM,IAAI,eAAe,CAAC,cAAc,CAAC,CAAC;IAC5C,CAAC;AACH,CAAC;AAED,MAAM,cAAc,GAAG,gCAAgC,CAAC;AAExD;;;;;;;;;GASG;AACH,MAAM,UAAU,kBAAkB,CAAC,IAAY;IAC7C,IAAI,CAAC,cAAc,CAAC,IAAI,CAAC,IAAI,CAAC,EAAE,CAAC;QAC/B,MAAM,IAAI,eAAe,CAAC,wBAAwB,IAAI,EAAE,CAAC,CAAC;IAC5D,CAAC;IACD,OAAO,IAAI,CAAC,WAAW,EAAE,CAAC;AAC5B,CAAC;AAED;;;;;;;;;GASG;AACH,MAAM,UAAU,mBAAmB,CAAC,KAAa;IAC/C,qEAAqE;IACrE,IAAI,UAAU,CAAC,IAAI,CAAC,KAAK,CAAC,EAAE,CAAC;QAC3B,MAAM,IAAI,eAAe,CAAC,sBAAsB,CAAC,CAAC;IACpD,CAAC;IACD,OAAO,KAAK,CAAC;AACf,CAAC;AAED;;;;;;;;;GASG;AACH,MAAM,UAAU,eAAe,CAAC,CAAS,EAAE,CAAS;IAClD,MAAM,GAAG,GAAG,IAAI,CAAC,GAAG,CAAC,CAAC,CAAC,MAAM,EAAE,CAAC,CAAC,MAAM,CAAC,CAAC;IACzC,IAAI,QAAQ,GAAG,CAAC,CAAC,MAAM,GAAG,CAAC,CAAC,MAAM,CAAC;IACnC,KAAK,IAAI,CAAC,GAAG,CAAC,EAAE,CAAC,GAAG,GAAG,EAAE,CAAC,EAAE,EAAE,CAAC;QAC7B,QAAQ,IAAI,CAAC,CAAC,CAAC,UAAU,CAAC,CAAC,CAAC,IAAI,CAAC,CAAC,GAAG,CAAC,CAAC,CAAC,UAAU,CAAC,CAAC,CAAC,IAAI,CAAC,CAAC,CAAC;IAC9D,CAAC;IACD,OAAO,QAAQ,KAAK,CAAC,CAAC;AACxB,CAAC;AAED;;;;;;;;;;;;;;GAcG;AACH,MAAM,UAAU,QAAQ;IACtB,MAAM,CAAC,GAAwB,UAAkB,CAAC,MAAM,CAAC;IACzD,IAAI,CAAC,EAAE,UAAU;QAAE,OAAO,CAAC,CAAC,UAAU,EAAE,CAAC;IACzC,IAAI,CAAC,EAAE,eAAe,EAAE,CAAC;QACvB,MAAM,GAAG,GAAG,IAAI,UAAU,CAAC,EAAE,CAAC,CAAC;QAC/B,CAAC,CAAC,eAAe,CAAC,GAAG,CAAC,CAAC;QACvB,OAAO,KAAK,CAAC,IAAI,CAAC,GAAG,EAAE,CAAC,CAAC,EAAE,EAAE,CAAC,CAAC,CAAC,QAAQ,CAAC,EAAE,CAAC,CAAC,QAAQ,CAAC,CAAC,EAAE,GAAG,CAAC,CAAC,CAAC,IAAI,CAAC,EAAE,CAAC,CAAC;IAC1E,CAAC;IACD,4EAA4E;IAC5E,OAAO,GAAG,IAAI,CAAC,GAAG,EAAE,CAAC,QAAQ,CAAC,EAAE,CAAC,IAAI,IAAI,CAAC,MAAM,EAAE,CAAC,QAAQ,CAAC,EAAE,CAAC,CAAC,KAAK,CAAC,CAAC,CAAC,EAAE,CAAC;AAC7E,CAAC"}